Sipcom, a global, full-service communications and collaboration provider today announced that its International Standard Organisation (ISO) 27001 certification is extended to 2023 following an extensive external audit. The certification signifies that Sipcom continues to meet world-class standards in protecting sensitive data and information that is required in order to service corporations in the most highly regulated industries, including financial services, pharmaceuticals, national defence and energy
The company’s operations were first ISO 27001-certified in 2017. “The ISO 27001 certification simply validates that our infrastructure, systems, physical environment as well as our service operations, meet the highest standards of data security and comply with global best practices used by top companies that store, handle or protect sensitive information,” said James Davidson, Chief Operating Officer of Sipcom. “Today’s security climate demands that all organisations go the extra mile to protect
customer data. Our ISO 27001 certification means that Sipcom is able to securely handle the most sensitive data from our clients.”
To achieve ISO 27001 certification, Sipcom underwent a rigorous assessment of its information security management systems (ISMS), including a risk analysis, risk mitigation through ISO 27001 controls and revision of policies and processes. Once the controls were implemented and internally audited, a thorough, third-party audit was performed to validate that Sipcom was managing information security risks in accordance with prevailing best practices.
Achieving ISO 27001 certification bestows a number of benefits to Sipcom
and its clients, including:
- Provides internationally recognised assurance on the security integrityof Sipcom data storage and transmission environment
- Reduces the need for third-party verification of information security
systems and protocols before engaging in new client projects
- Provides a framework to proactively identify information security risks
and implement appropriate controls
- Provides a methodology to ensure compliance with relevant laws and
regulations
- Improves internal organisation and builds a culture of security
- Helps create repeatable and sustainable processes that are easy to
update
- Helps increase productivity and reduce overall costs, as information
security incidents are reduced